Design/Logic Flaw

2019-04-0815:29:00

PRIOn knowledge base

www.prio-n.com

6.2 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

33.0%

JSON

IBM Business Automation Workflow and Business Process Manager 18.0.0.0, 18.0.0.1, and 18.0.0.2 are vulnerable to a denial of service attack. An authenticated attacker might send a specially crafted request that exhausts server-side memory. IBM X-Force ID: 154774.

CPENameOperatorVersion
business_automation_workfloweq18.0.0.1
business_automation_workfloweq18.0.0.0
business_automation_workfloweq18.0.0.2
business_process_managereq8.5.6.0 cf1
business_process_managereq8.5.7.0
business_process_managereq8.5.6.0
business_process_managereq8.5.5.0
business_process_managereq8.5.6.0 cf2
business_process_managereq8.6.0.0
business_process_managereq8.5.7.0 cf2017.6

Name	Operator	Version
business_automation_workflow	eq	18.0.0.1
business_automation_workflow	eq	18.0.0.0
business_automation_workflow	eq	18.0.0.2
business_process_manager	eq	8.5.6.0 cf1
business_process_manager	eq	8.5.7.0
business_process_manager	eq	8.5.6.0
business_process_manager	eq	8.5.5.0
business_process_manager	eq	8.5.6.0 cf2
business_process_manager	eq	8.6.0.0
business_process_manager	eq	8.5.7.0 cf2017.6